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Amendments to the Claims: 

This listing of claims replaces all prior versions, and listings, of claims in this application. 
Listing of Claims: 

1 . (Currently Amended) A M ethod method for performing an electronic transaction 
between a first transaction party and a second transaction party using an electronic device 
operated by the first transaction party, the method comprising: 

providing authentication data in a memory of said electronic device which authentication 
data are inaccessible to a user of said electronic device; 

providing authentication software in said electronic device, the authentication data being 
accessible to said authentication software; 

activating the authentication software to generate a digital signature from the 
authentication data; 

providing the digital signature to the second transaction party. 

2. (Currently Amended) The Metho d method according to claim 1 , wherein the second 
transaction party provides digital data to the first transaction party. 

3. (Currently Amended) The Me thod method according to claim 2, wherein the second 
transaction party embeds the digital signature in the digital data provided to the first transaction 
party. 

4. (Currently Amended) The Metho d method according to claim 1 , wherein the second 
transaction party stores the digital signature together with data identifying the first transaction 
party. 
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5 . (Currently Amended) The Method method according to claim 1 , wherein the 
authentication data are provided by the second transaction party, which stores the authentication 
data together with data identifying the first transaction party. 

6. (Currently Amended) The Met h od method according to claim 5, wherein the second 
transaction party uses the stored authentication data to obtain transaction specific authentication 
data according to a specific algorithm. 

7. (Currently Amended) The Method method according to claim 6, wherein the second 
transaction party verifies the digital signature provided by the first transaction party using the 
authentication data stored at the second transaction party. 

8. (Currently Amended) The Method method according to claim 1 , wherein the first 
transaction party further provides a signed digital signature to the second transaction party, the 
signed digital signature being generated by the authentication software by signing the digital 
signature using a private key, which private key is unique for said authentication software and is 
known to a third party. 

9. (Currently amended) A method M e thod for performing a verification of legitimate use of 
digital data on an electronic device, the method comprising: 

providing authentication data in a memory of said electronic device which authentication 
data are inaccessible to a user of the electronic device; 

providing authentication software in said electronic device, the authentication data being 
accessible to said authentication software; 

activating the authentication software to r e g e n e r ate generate a digital signature from the 
authentication data; 
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providing the digital signature to the authentication software by an application accessing 
digital data having a digital signature embedded therein; and 

comparing the regener ated generated digital signature with the embedded digital 
signature. 

1 0. (Currently Amended) The Method method according to claim 1 , wherein the 
authentication data are encrypted by the second transaction party using an encryption key before 
the authentication data are provided to the first transaction party. 

1 1 . (Currently Amended) The M e thod method according to claim 1 0, wherein the 
authentication software retrieves a decryption key associated with the encryption key and 
decrypts the authentication data at its a first use of the authentication data . 

12. (Currently Amended) The M e thod method according to claim 1 , wherein said memory is 
inaccessible to an operating system of said electronic device, thereby rendering the 
authentication data inaccessible to said user, 

1 3 . (Currently Amended) The Method method according to claim 1 2, wherein the 
authentication data are provided in a Basic Input-Output System (BIOS) of the electronic device. 

1 4. (Currently Amended) The Method method according to claim 1 , wherein the 
authentication data are encrypted, encrypted when the authentication data are stored in said 
memory, and wherein a decryption key for decryptin g? decrypting the authentication data being 
is inaccessible to said user and to any user-operated software, thereby rendering the 
authentication data inaccessible to said user. 

1 5 . (Currently Amended) The M e tho d method according to claim 1 4, wherein the 
authentication data are encrypted using at least two encryption layers. 
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16. (Currently Amended) The Method method according to claim 15, wherein at least one 



one serial numbers of a hardware components of said electronic devices. 

17. (Currently Amended) The M e thod method according to claim 1 5, wherein at least one 
encryption layer may be decrypted by the authentication software. 

18. (Currently Amended) The Me t hod method according to claim 1 4, wherein the 
authentication data are decrypted in a secure processing, processing environment inaccessible to 
said user and to any user-operated software. 

1 9. (Currently Amended) The Method method according to claim 1 , wherein the 
authentication data comprise an authentication table. 

20. (Currently Amended) The Meth o d method according to claim 1 9, wherein the 
authentication table is generated from a bit string which is generated from fixed data and variable 
data. 

21 . (Currently Amended) The M e th o d method according to claim 20, wherein the fixed data 
are at least part of a serial number of a hardware device. 

22. (Currently Amended) The Method method according to claim 20, wherein the fixed data 
are at least part of a device specific software identification code of the authentication software. 

23. (Currently Amended) The Method method according to claim 20, wherein the variable 
data comprise a random table. 

24. (Currently Amended) The M e thod method according to claim 23, wherein the random 
table is calculated from a random two-dimensional or three-dimensional pattern. 



encryption layer may be decrypted using a decryption key associated with 



at least 
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25 . (Currently Amended) The Met hod method according to claim 1 9, wherein the 
authentication table is generated from fixed data, variable data and a bit string, which bit string is 
specific to a trusted third party that provides the authentication data. 

26. (Currently Amended) The Method method according to claim 1 , wherein the 
authentication software is stored in a secure memory location inaccessible to an operating 
system. 

27. (Currently Amended) The Method method according to claim 1 , wherein the 
authentication software is run in a secure processing environment inaccessible to an operating 
system. 

28. (Currently Amended) A M e thod method for encrypting digital data on an electronic 
device using an encryption key, the method comprising: 

gathering session specific data; 

hashing said session specific data to obtain reference numbers referring to positions in an 
authentication table stored in said electronic device; 

generating said encryption key from the characters stored in the authentication table at 
said positions; and 

encrypting said digital data using said encryption key. 

29. (Currently amended) A system System for performing an electronic transaction between 
a first transaction party and a second transaction party using an electronic device operated by the 
first transaction party, the system comprising: 

means for providing authentication data in a memory of said electronic device which 
authentication data are inaccessible to a user of the electronic device; 
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means for providing authentication software in said electronic device, the authentication 
data being accessible to said authentication software; 

means for activating the authentication software to generate a digital signature from the 
authentication data; 

means for providing the digital signature to the second transaction party; and 

means for providing digital data from the second transaction party to the first transaction 

party. 

30. (Currently amended) A system System for performing a verification of legitimate use of 
digital data on an electronic device, the system comprising: 

means for providing authentication data in a memory of said electronic device which 
authentication data are inaccessible to a user of the electronic device; 

means for providing authentication software in said electronic device, the authentication 
data being accessible to said authentication software; 

means for activating the authentication software to generate a digital signature from the 
authentication data; 

means for providing the digital signature to the authentication software by an application 
accessing digital data having a digital signature embedded therein; and 

means for comparing the regen e rated generated digital signature with the embedded 
digital signature. 

3 1 . (Currently amended) A system Sy s tem for encrypting digital data using an encryption 
key, the system comprising: 
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means for providing authentication data in a memory of said electronic device which 
authentication data are inaccessible to a user of the electronic device; 

means for providing authentication software in said electronic device, the authentication 
data being accessible to said authentication software; 

means for activating the authentication software to generate a digital signature from the 
authentication data; 

means for gathering session specific data; 

means for hashing said session specific data to obtain reference numbers referring to 
positions in an authentication table stored in said electronic device; 

means for generating said encryption key from the characters stored in the authorization 
table at said positions; and 

means for encrypting said digital data using said encryption key. 
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